"Richard L. Goerwitz III" <richard@Goerwitz.com> writes:
> Is there any way in OpenLDAP 2.2.x to say the following:
>
> 1) binds must occur over sessions with an SSF of at least 63
>
> 2) UNLESS the peer is 127.0.0.1 (in which case a lower SSF is
> acceptable)
Yes that is posible, in principle. But I would use ldapi instead of
localhost. The socket has a build-in ssf of 71.
-Dieter
--
Dieter Klünter | Systemberatung
http://www.dkluenter.de
GPG Key ID:8C183C8622115328